The good news is that most sites deemed vulnerable have patched their systems or are in the process of doing so.
The bad news is that Web browsers may be overloaded by the overhaul of security certificates, leading to error messages and impacting Web performance, said Johannes Ullrich of the SANS Internet Storm Center.
“A good percentage of the websites are patched,” Ullrich told AFP.
The patches enable the Web operators to obtain new security certificates that demonstrate they can be trusted by Web browsers.
But Ullrich noted that for each patch, Web browsers must update their list of “untrusted” certificates or “keys” that would be rejected.
“For the fix, the website needs to obtain a new private key and the old key has to be revoked,” he said. “Browsers will not trust the old keys.”
Browsers may usually update dozens of keys on a daily basis, but because of Heartbleed, that may rise to tens of thousands.
Read more at: Phys.org